Currently, we only support secret providers to store the variables that are injected into the pipeline steps. It would be goo to allow the same to store runner OAuth credentials as there is a possibility of the credentials being visible in the process dumps, scan logs, etc.